blackarrowsec/mssqlproxy

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/blackarrowsec/mssqlproxy)

blackarrowsec / mssqlproxy

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

☆769

Alternatives and similar repositories for mssqlproxy

Users that are interested in mssqlproxy are comparing it to the libraries listed below

Sorting:

JamesCooteUK / SharpSphere
View on GitHub
.NET Project for Attacking vCenter
☆553Nov 11, 2021Updated 4 years ago
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆964Aug 5, 2021Updated 4 years ago
0x09AL / IIS-Raid
View on GitHub
A native backdoor module for Microsoft IIS (Internet Information Services)
☆556Jul 3, 2020Updated 5 years ago
rootclay / WMIHACKER
View on GitHub
A Bypass Anti-virus Software Lateral Movement Command Execution Tool
☆1,464Jan 20, 2025Updated last year
blackarrowsec / pivotnacci
View on GitHub
A tool to make socks connections through HTTP agents
☆719Mar 30, 2021Updated 4 years ago
mindspoof / MSSQL-Fileless-Rootkit-WarSQLKit
View on GitHub
WarSQLKit is a fileless rootkit and attack tool I developed for MS-SQL. With this tool you can rootkit the SQL service that uses CLR on M…
☆263Dec 19, 2023Updated 2 years ago
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,430Sep 29, 2021Updated 4 years ago
QAX-A-Team / sharpwmi
View on GitHub
sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
☆715Aug 3, 2021Updated 4 years ago
G0ldenGunSec / SharpSecDump
View on GitHub
.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
☆617Feb 16, 2023Updated 3 years ago
nccgroup / SocksOverRDP
View on GitHub
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
☆1,245Nov 2, 2022Updated 3 years ago
zcgonvh / EfsPotato
View on GitHub
Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
☆819Dec 14, 2023Updated 2 years ago
b4rtik / SharpAdidnsdump
View on GitHub
c# implementation of Active Directory Integrated DNS dumping (authenticated user)
☆206May 25, 2021Updated 4 years ago
Mr-Un1k0d3r / SCShell
View on GitHub
Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
☆1,608Jul 10, 2023Updated 2 years ago
CCob / SweetPotato
View on GitHub
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
☆1,812Sep 4, 2024Updated last year
cube0x0 / SharpMapExec
View on GitHub
☆667Nov 17, 2021Updated 4 years ago
nccgroup / nccfsas
View on GitHub
Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.
☆608Aug 5, 2022Updated 3 years ago
cube0x0 / noPac
View on GitHub
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
☆1,397Dec 16, 2021Updated 4 years ago
evi1ox / MSSQL_BackDoor
View on GitHub
☆159Aug 4, 2020Updated 5 years ago
0x09AL / RdpThief
View on GitHub
Extracting Clear Text Passwords from mstsc.exe using API Hooking.
☆1,432Jul 20, 2024Updated last year
mai1zhi2 / SharpBeacon
View on GitHub
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
☆730Sep 1, 2021Updated 4 years ago
b4rtik / SharpKatz
View on GitHub
Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
☆1,012Nov 7, 2021Updated 4 years ago
360-Linton-Lab / Telemetry
View on GitHub
WINDOWS TELEMETRY权限维持
☆258Jul 2, 2020Updated 5 years ago
CCob / SharpBlock
View on GitHub
A method of bypassing EDR's active projection DLL's by preventing entry point exection
☆1,162Mar 31, 2021Updated 4 years ago
fox-it / LDAPFragger
View on GitHub
☆197Mar 19, 2020Updated 6 years ago
nccgroup / ABPTTS
View on GitHub
TCP tunneling over HTTP/HTTPS for web application servers
☆744Aug 12, 2016Updated 9 years ago
dev-2null / ADCollector
View on GitHub
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
☆635Oct 18, 2025Updated 5 months ago
Tycx2ry / SweetPotato_CS
View on GitHub
修改的SweetPotato，使之可以用于CobaltStrike v4.0
☆246Apr 30, 2020Updated 5 years ago
Flangvik / SharpProxyLogon
View on GitHub
C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
☆250Mar 31, 2021Updated 4 years ago
FuzzySecurity / StandIn
View on GitHub
StandIn is a small .NET35/45 AD post-exploitation toolkit
☆840Dec 2, 2023Updated 2 years ago
gloxec / CrossC2
View on GitHub
generate CobaltStrike's cross-platform payload
☆2,547Nov 20, 2023Updated 2 years ago
rxwx / spoolsystem
View on GitHub
Print Spooler Named Pipe Impersonation for Cobalt Strike
☆272Jun 13, 2020Updated 5 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆718May 25, 2020Updated 5 years ago
cbwang505 / CVE-2020-0787-EXP-ALL-WINDOWS-VERSION
View on GitHub
Support ALL Windows Version
☆722Sep 11, 2020Updated 5 years ago
SkewwG / domainTools
View on GitHub
内网域渗透小工具
☆733Apr 20, 2021Updated 4 years ago
uknowsec / SharpToolsAggressor
View on GitHub
内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
☆499Feb 13, 2020Updated 6 years ago
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆637Apr 4, 2021Updated 4 years ago
BeichenDream / BadPotato
View on GitHub
Windows 权限提升 BadPotato
☆889May 10, 2020Updated 5 years ago
uknowsec / SweetPotato
View on GitHub
Modifying SweetPotato to support load shellcode and webshell
☆788Jun 2, 2021Updated 4 years ago
QAX-A-Team / BrowserGhost
View on GitHub
这是一个抓取浏览器密码的工具，后续会添加更多功能
☆1,455May 21, 2022Updated 3 years ago